端口转发
iptables -t nat -A PREROUTING -p tcp -m tcp --dport 80  -j DNAT  --to-destination 192.168.10.2:80
iptables -t nat -A POSTROUTING -d 192.168.10.2 -p tcp --dport 80 -j SNAT --to-source 192.168.0.185

service iptables save

service iptables restart

 

查看状态
service iptables status 

 

开放端口/删除端口
iptables -A INPUT -p tcp --dport 10000 -j ACCEPT
iptables -L -n --line-number
iptables -D INPUT 2